The Office of the Australian Information Commissioner (OAIC) has unveiled its most recent Notifiable Data Breaches (NDB) report and dashboard for January to June 2025. This report reveals that the frequency of reported data breaches is persistently high across both public and private sectors in Australia. The updated dashboard highlights…
The U.S. government, along with critical allies such as the European Union, the United Kingdom, and NATO, has officially linked a substantial cyberattack on Microsoft Exchange email servers to state-sponsored hacking groups associated with China’s Ministry of State Security (MSS). The attack exploited zero-day vulnerabilities in Microsoft Exchange, which were…
In a recent 8-K filing with the U.S. Securities and Exchange Commission, healthcare technology provider Omnicell disclosed that its systems and services were subjected to a ransomware attack. This incident has significant implications, as it affects both the company’s operational integrity and the sensitive data it manages. Upon identifying the…
Medibank Suffers Major Data Breach Following Ransomware Attack In a significant cybersecurity incident, Australian health insurance provider Medibank has reported unauthorized access to the personal information of all its customers, following a recent ransomware attack. This breach highlights vulnerabilities within the organization and raises alarms regarding data security in the…
In a significant breach of cybersecurity, Australian health insurer Medibank has announced that the personal data of approximately 9.7 million current and former customers has been compromised due to a ransomware attack. The incident, detected on October 12, raised alarms within the company when signs consistent with a ransomware event…
The U.S. Treasury Department has taken decisive action by sanctioning the Russian cryptocurrency exchange Suex. This move is in response to the exchange’s alleged involvement in facilitating and laundering transactions linked to at least eight variants of ransomware. The action aligns with governmental efforts aimed at reducing the financial efficacy…
Svenska kraftnät, the national operator of Sweden’s power grid, has reported a data breach that has exposed sensitive information to unauthorized individuals. The breach was publicly disclosed on October 26, 2025, and is linked to the notorious Everest ransomware group. This incident marks a significant concern amid a rising tide…
Critical Infrastructure Security Everest Extortion Group Targets Dublin Airport Akshaya Asokan (asokan_akshaya) • October 27, 2025 Image: Shutterstock A Russian data extortion group named Everest has threatened to release 1.5 million records allegedly obtained from Dublin Airport. This threat follows an investigation into a cybersecurity breach that originated from a…
A financially motivated threat group, identified as FIN12, has been linked to a series of RYUK ransomware incidents since October 2018. This organization demonstrates significant collaboration with TrickBot-affiliated actors while utilizing publicly accessible tools like Cobalt Strike Beacon payloads to penetrate victim networks. Cybersecurity firm Mandiant has attributed these security…
